(The concept of ambiguity testing has been around for at least 20 years, but it has only recently attracted widespread attention. Security flaws have baffled many popular client applications, including Microsoft's Internet Explorer, Word and Excel, many of which were discovered in 2006 through fuzz testing techniques. The effective use of ambiguity testing techniques has resulted in many new tools and an increasingly widespread impact. This book is the first openly published monograph on the subject, and this embarrassing reality also heralds a more intensive interest in fuzz testing in the future. Over the years, we have participated in many researches related to security vulnerabilities, and have used various ambiguity testing techniques in our daily work, from immature, personal hobby projects to high-end commercial products. test. Each of the authors has participated in the development of fuzzers for private use and public distribution. This book is the result of our previous practical experience and the sweat of our ongoing research projects, and we hope that readers will benefit from it.
Fuzzing_Fuzzy Testing--Mandatory Security Vulnerability Discovery.doc)